DocuSign Phishing Campaign Targets Low Ranking Employees

Share post:

Avanan researchers have released more details to underscore a new trend in phishing, which involves actors targeting non-executive employees with access to valuable areas and data within an organization.

The researchers found that half of all phishing emails analyzed in recent months impersonated non-executives and 77% of the targeted employees on the same level using DocuSign, a legit cloud-based document signing platform.

According to the researchers, the threat actors offer DocuSign as an alternative signature method in the e-mails they send and ask recipients to enter their login credentials to view and sign the document.

Though the e-mails are designed to look legitimate, they are not like real DocuSign requests. DocuSign never asks users to enter passwords, instead receiving an authentication code via e-mail.

Users are advised to take the time to check every email that arrives in their inbox for signs of irregularities such as spelling mistakes, unsolicited attachments and the need to enter their login details.

For more information, read the original story in Bleeping Computer.

Featured Tech Jobs

SUBSCRIBE NOW

Related articles

Canada cyber centre issues caution after group from India issues threat

'Indian Cyber Force' issues threat after Canada says it has evidence of possible ties to India in the killing of a Sik

Cyber Security Today, Week in Review for the week ending Friday, Sept. 22, 2023

This episode features discussion about the MGM Resorts ransomware attack, and on recent DDoS attacks against Canadia

Despite AI, infosec leaders have ‘job security forever,’ conference told

Don't worry about AI taking the jobs of CISOs, a panel at the SIBOS 2023 conference in Toront

Despite AI, infosec leaders have ‘job security forever,’ conference told

Don't worry about AI taking the jobs of CISOs, a panel at the SIBOS 2023 conference in Toront

Become a member

New, Relevant Tech Stories. Our article selection is done by industry professionals. Our writers summarize them to give you the key takeaways